{"vulnerability": "CVE-2024-4219", "sightings": [{"uuid": "0f02b657-119b-4432-9262-8d949710de4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42195", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113598409145192153", "content": "", "creation_timestamp": "2024-12-05T04:49:23.486437Z"}, {"uuid": "b3c64baa-f20a-429b-91a6-12ea74c3db25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42194", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113669377987918770", "content": "", "creation_timestamp": "2024-12-17T17:37:42.075432Z"}, {"uuid": "7a1a5d88-7cf8-4c24-b989-33bf2ca05914", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42191", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfnol5havq2", "content": "", "creation_timestamp": "2025-05-30T16:28:57.719249Z"}, {"uuid": "8ea3d30f-9240-4201-8464-9bff6086d7e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42190", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfnom5xinh2", "content": "", "creation_timestamp": "2025-05-30T16:29:08.177083Z"}, {"uuid": "901642da-b8cc-4920-b96e-f17fb4a993ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42191", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqg2nmsa7d2k", "content": "", "creation_timestamp": "2025-05-30T20:21:05.937350Z"}, {"uuid": "ffa554c3-d08a-4b8a-b3a8-34811b692af1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42190", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqfzl2xy6h2m", "content": "", "creation_timestamp": "2025-05-30T20:01:43.460344Z"}, {"uuid": "ebd078ad-6fb6-4a38-a9e6-79ae91868768", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42193", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11882", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-42193\n\ud83d\udd25 CVSS Score: 2.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L)\n\ud83d\udd39 Description: HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle (MITM) attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized access.\n\ud83d\udccf Published: 2025-04-15T18:16:01.247Z\n\ud83d\udccf Modified: 2025-04-15T18:51:09.135Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120585", "creation_timestamp": "2025-04-15T18:54:52.000000Z"}, {"uuid": "21226329-5bd6-46b0-8ca0-d4ee2efa3f94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42195", "type": "seen", "source": "https://t.me/cvedetector/12062", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42195 - HCL DevOps Deploy / HCL Launch is vulnerable to HT\", \n  \"Content\": \"CVE ID : CVE-2024-42195 \nPublished : Dec. 5, 2024, 5:15 a.m. | 36\u00a0minutes ago \nDescription : HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T06:59:16.000000Z"}, {"uuid": "524bc918-54a4-4f06-ae07-a049d5acd1eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42193", "type": "seen", "source": "https://t.me/cvedetector/23004", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42193 - HCL BigFix Web Reports SSL Certificate Validation Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-42193 \nPublished : April 15, 2025, 7:16 p.m. | 56\u00a0minutes ago \nDescription : HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle (MITM) attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized access. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-15T22:28:12.000000Z"}, {"uuid": "485608ee-2486-4580-b596-dd4df2482d1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42196", "type": "seen", "source": "https://t.me/cvedetector/12233", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42196 - HCL Launch stores potentially sensitive informatio\", \n  \"Content\": \"CVE ID : CVE-2024-42196 \nPublished : Dec. 6, 2024, 3:15 p.m. | 42\u00a0minutes ago \nDescription : HCL Launch stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs. \nSeverity: 6.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-06T17:17:45.000000Z"}, {"uuid": "6d5dc736-ae68-4f2f-aa03-52fd72c8457f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42194", "type": "seen", "source": "https://t.me/cvedetector/13120", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42194 - HCL BigFix Inventory Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42194 \nPublished : Dec. 17, 2024, 6:15 p.m. | 43\u00a0minutes ago \nDescription : An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory.  An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T20:07:45.000000Z"}]}